From Collaborative RCE Knowledge Library

Jump to: navigation, search

Dex Education: Practicing Safe Dex

Item name: Dex Education: Practicing Safe Dex
Rating: 0.0 (0 votes)
Author: Tim Strazzere                        
Home URL: N/A
Last updated:
Version (if appl.):
Direct D/L link: http://www.strazzere.com/papers/DexEducation-PracticingSafeDex.pdf
Description: This is probably the first public publication on how Tim deconstruct some of the intricacies of the dex file format and analyze how some of the Android tools parse and manage the dex format. Along the way he observed a number of easily exploitable functionality, documenting specifically why they fail and how to fix them. A proof of concept tool - APKfuscator - that shows how to exploit these flaws.
It introduces some of the basic Anti-Reversing against some of the Android tools that Malware Analyst use to analyse Android Malware.

You can find his POC here.
https://github.com/strazzere/APKfuscator

Related URLs: No related URLs have been submitted for this item yet


RSS feed Feed containing all updates for this item.

You are welcome to add your own useful notes about this tool, for others to see!



If you find that any information for the item above is missing, outdated or incorrect, please edit it!
(please also edit it if you think it fits well in some additional category, since this can also be controlled)


Views
Category Navigation Tree
   Tools